Tenable Nessus says that the are "the most widely deployed vulnerability scanner in the world". Truth be told I have not seen the data but I am always impressed when I use it as a stage-1 step in web application testing. It almost always gives me great leads to follow through stage-2 tools and manual testing.

What Is The Latest News on Nessus? Version 6 – See The Latest Features Of This Top Ranked Vulnerability Scanner!

The latest version, Nessus v6, enables you to reduce your attack surface by enforcing compliance and system hardening policies. Nessus users will more easily be able to create and customize compliance and security policies while also being able to manage scan results, schedules, and policies.

Myths versus reality. Is SQL injection on the rise or the decline? An interesting discussion between two articles.

Is it actually true? SQL injection vulnerabilities surge to highest levels in three years, according to DB Networks analyzed statistics from the National Vulnerability Database, a federally funded repository of cyber-vulnerability data maintained by the National Institute of Standards and Technology.

Article #1: “After years of steady decline, 2014 witnessed a significant uptick in SQL injection vulnerabilities identified in publicly released software packages. DB Networks research indicates this alarming fact is directly attributed to today’s software development methodology – an emphasis on deadlines and budgets that gives short shrift to the kind of security due diligence…